This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/8Bes5SFWTxypNyxAzOT-k1J7LoA.roa File: 8Bes5SFWTxypNyxAzOT-k1J7LoA.roa (raw, json) Hash identifier: uavY+yoPxdR0sSqyFwhUtOuQEXIcW0+aaueSIaFf9Ts= Subject key identifier: F0:17:AC:E5:21:56:4F:1C:A9:37:2C:40:CC:E4:FE:93:52:7B:2E:80 Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7 Certificate serial: 019BE0C78199A82F97B4DC20363987269FDD Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/8Bes5SFWTxypNyxAzOT-k1J7LoA.roa Signing time: Wed 21 Jan 2026 13:38:49 +0000 ROA not before: Wed 21 Jan 2026 13:38:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 85.204.181.0/24 maxlen: 24 86.105.58.0/24 maxlen: 24 86.105.211.0/24 maxlen: 24 86.107.164.0/24 maxlen: 24 89.39.97.0/24 maxlen: 24 93.113.70.0/24 maxlen: 24 93.119.144.0/24 maxlen: 24 93.119.201.0/24 maxlen: 24 93.119.232.0/24 maxlen: 24 188.208.124.0/24 maxlen: 24 188.214.136.0/24 maxlen: 24 188.214.138.0/24 maxlen: 24 188.214.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.mft rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:c7:81:99:a8:2f:97:b4:dc:20:36:39:87:26:9f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7 Validity Not Before: Jan 21 13:38:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f017ace521564f1ca9372c40cce4fe93527b2e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:be:ca:2d:df:07:d4:f8:12:a8:67:e7:7d:8b: 04:2a:a7:db:20:21:96:5a:67:c7:74:cc:f4:68:c9: a5:04:a5:44:8f:b0:e4:69:3e:06:d2:31:4b:c6:42: 55:e0:93:9c:dd:bb:62:ac:2f:82:d0:61:b9:57:37: 67:27:d3:09:3d:a5:9a:4d:f1:cc:6d:7f:96:34:9d: 0e:39:a0:ff:32:d2:c6:57:7e:a3:99:4a:f1:fc:27: 3e:59:5c:b1:b9:5d:5f:a5:62:a6:89:a9:d1:01:71: 75:70:ee:47:4a:cb:ea:df:cf:15:ef:fa:39:28:c3: 07:5b:7b:0d:fe:9c:9d:b5:2f:75:17:f8:b3:21:a1: 9a:2b:51:b0:a1:50:d9:82:52:5b:92:a7:ae:8d:9a: 0f:8b:a8:dd:9d:0d:1a:01:cf:ad:d9:7b:e8:36:58: 2a:78:ca:85:98:6f:e1:01:1e:67:f0:10:d8:17:81: bf:0e:5a:b9:33:58:21:0d:2b:ba:fd:5c:19:69:79: 47:9a:40:f2:a5:1a:f4:60:1d:6b:bb:a9:3e:a5:95: c4:85:dc:90:d6:5c:0a:7a:8e:d6:63:4b:b8:2c:ff: de:a6:0d:d3:6f:f7:04:ec:6f:e3:b7:61:52:92:93: 50:b7:de:6f:5b:6f:d0:4e:53:eb:6f:32:ee:9d:2d: f5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:17:AC:E5:21:56:4F:1C:A9:37:2C:40:CC:E4:FE:93:52:7B:2E:80 X509v3 Authority Key Identifier: keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/8Bes5SFWTxypNyxAzOT-k1J7LoA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.181.0/24 86.105.58.0/24 86.105.211.0/24 86.107.164.0/24 89.39.97.0/24 93.113.70.0/24 93.119.144.0/24 93.119.201.0/24 93.119.232.0/24 188.208.124.0/24 188.214.136.0/24 188.214.138.0/23 Signature Algorithm: sha256WithRSAEncryption 22:e7:06:f3:70:9c:ef:dc:1d:c2:b2:e1:3d:a6:f2:2b:81:de: d4:7e:ae:ae:ff:27:f1:1f:70:87:2c:16:e0:51:c4:f3:c2:88: 5d:57:b8:ee:3d:38:e8:cb:fa:33:bf:08:ee:fc:02:9e:d4:fa: be:ef:9a:a7:42:08:a4:40:b8:19:75:0e:68:a2:94:a9:fa:36: 9f:ab:e9:4a:7e:eb:e0:4c:cf:ec:20:b6:cd:72:6d:f2:e8:09: 76:df:03:a8:dc:fb:2a:e8:88:49:d2:96:28:e6:02:71:2e:ec: c2:4f:8f:15:60:f6:40:7e:08:4d:c7:d4:ec:68:ae:ed:64:e9: 3f:ac:bb:56:d0:80:8d:fa:b9:b6:f6:2f:df:88:de:be:f0:f4: 9a:36:89:7e:4a:e7:26:4b:6e:71:e3:ff:35:0a:8f:6e:56:a8: 93:77:2a:44:98:c5:c9:ad:51:80:ed:ca:2d:f0:e5:e5:99:eb: 44:b6:3a:4e:3b:dd:ae:a9:31:c0:cb:be:3d:62:c5:98:b3:bc: bd:ec:c7:dd:7e:f3:85:3b:1e:95:10:ed:d3:80:79:d1:f1:4e: d8:eb:9c:2b:f5:70:e1:61:69:be:28:54:c0:a5:6a:a4:61:4e: be:0b:45:82:c5:b1:f1:c7:f6:dd:72:9e:17:9f:d7:7c:65:61: 28:53:cf:cb -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZvgx4GZqC+XtNwgNjmHJp/dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMDg4ZTA2ZDU1M2NmZjI5M2QyNzdmNGQ3NmMzYTcxMGJk OGIyZjcwHhcNMjYwMTIxMTMzODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDE3YWNlNTIxNTY0ZjFjYTkzNzJjNDBjY2U0ZmU5MzUyN2IyZTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmb7KLd8H1PgSqGfnfYsEKqfbICGW WmfHdMz0aMmlBKVEj7DkaT4G0jFLxkJV4JOc3btirC+C0GG5VzdnJ9MJPaWaTfHM bX+WNJ0OOaD/MtLGV36jmUrx/Cc+WVyxuV1fpWKmianRAXF1cO5HSsvq388V7/o5 KMMHW3sN/pydtS91F/izIaGaK1GwoVDZglJbkqeujZoPi6jdnQ0aAc+t2XvoNlgq eMqFmG/hAR5n8BDYF4G/Dlq5M1ghDSu6/VwZaXlHmkDypRr0YB1ru6k+pZXEhdyQ 1lwKeo7WY0u4LP/epg3Tb/cE7G/jt2FSkpNQt95vW2/QTlPrbzLunS31FwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPAXrOUhVk8cqTcsQMzk/pNSey6AMB8GA1UdIwQY MBaAFKIIjgbVU8/yk9J39NdsOnEL2LL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTct YmJlYTI5MThlMTAyLzEvOEJlczVTRldUeHlwTnl4QXpPVC1rMUo3TG9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTctYmJlYTI5MThlMTAy LzEvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAVcy1AwQA Vmk6AwQAVmnTAwQAVmukAwQAWSdhAwQAXXFGAwQAXXeQAwQAXXfJAwQAXXfoAwQA vNB8AwQAvNaIAwQBvNaKMA0GCSqGSIb3DQEBCwUAA4IBAQAi5wbzcJzv3B3CsuE9 pvIrgd7Ufq6u/yfxH3CHLBbgUcTzwohdV7juPTjoy/ozvwju/AKe1Pq+75qnQgik QLgZdQ5oopSp+jafq+lKfuvgTM/sILbNcm3y6Al23wOo3Psq6IhJ0pYo5gJxLuzC T48VYPZAfghNx9TsaK7tZOk/rLtW0ICN+rm29i/fiN6+8PSaNol+SucmS25x4/81 Co9uVqiTdypEmMXJrVGA7cot8OXlmetEtjpOO92uqTHAy749YsWYs7y97MfdfvOF Ox6VEO3TgHnR8U7Y65wr9XDhYWm+KFTApWqkYU6+C0WCxbHxx/bdcp4Xn9d8ZWEo U8/L -----END CERTIFICATE-----Generated at Sun Jan 25 17:39:33 2026 by rpki-client